Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/0V3lT22S87mmA_YG5YuI_rmNIo8.roa
File: 0V3lT22S87mmA_YG5YuI_rmNIo8.roa (raw, json)
Hash identifier: dYSWvufGOI8HvjGf6zNHQC1RMVrpEL8BrowS0XjlvnU=
Subject key identifier: D1:5D:E5:4F:6D:92:F3:B9:A6:03:F6:06:E5:8B:88:FE:B9:8D:22:8F
Certificate issuer: /CN=18101772248996b87d90840c2d27d62549458173
Certificate serial: 018CC348EF454EC661B21686577E1EA328FD
Authority key identifier: 18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/0V3lT22S87mmA_YG5YuI_rmNIo8.roa
Signing time: Mon 01 Jan 2024 04:29:46 +0000
ROA not before: Mon 01 Jan 2024 04:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.81.28.0/22 maxlen: 24
45.141.168.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jan 2024 07:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:ef:45:4e:c6:61:b2:16:86:57:7e:1e:a3:28:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18101772248996b87d90840c2d27d62549458173
Validity
Not Before: Jan 1 04:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d15de54f6d92f3b9a603f606e58b88feb98d228f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:de:81:b3:bf:24:e1:d5:10:6f:95:0a:75:4f:
69:ba:2a:66:4d:83:9b:67:f0:f4:ee:01:97:70:45:
f0:52:e8:81:60:cd:fb:e1:ca:46:3a:f6:03:4e:ac:
14:47:fd:39:b1:d5:2a:6c:15:d2:a4:56:0d:d6:7e:
3b:9c:22:7a:d1:5a:64:3f:8c:ef:30:d4:72:fe:bd:
d1:b0:af:8c:5a:e2:c8:8d:4f:66:39:36:2f:eb:20:
ca:a6:3c:fe:69:f6:4c:be:53:3d:1d:44:2a:5f:04:
f3:e5:18:60:45:c4:92:74:6f:30:cc:90:38:b7:81:
db:5c:cb:a4:3e:54:5c:ed:05:30:77:91:5c:03:c0:
2e:92:73:97:78:ee:4e:18:2c:28:a0:a0:9f:da:23:
fe:4c:f7:7e:50:a7:39:eb:fa:54:e4:59:f0:89:5e:
85:53:52:70:a5:ec:f6:d0:35:1c:b9:d5:02:43:6a:
54:a1:bc:cf:4f:1b:64:38:3f:c6:26:ff:5e:b4:51:
f7:2e:b3:e3:e4:2a:bf:e3:a4:24:26:e3:de:c8:ce:
84:9c:43:f6:41:44:cb:68:70:6a:3a:4a:be:90:f9:
c9:36:b4:30:6f:1f:e1:96:60:5f:41:42:04:4a:d5:
e3:26:1b:20:b7:1d:91:49:c8:75:43:59:92:05:40:
20:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:5D:E5:4F:6D:92:F3:B9:A6:03:F6:06:E5:8B:88:FE:B9:8D:22:8F
X509v3 Authority Key Identifier:
keyid:18:10:17:72:24:89:96:B8:7D:90:84:0C:2D:27:D6:25:49:45:81:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GBAXciSJlrh9kIQMLSfWJUlFgXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/0V3lT22S87mmA_YG5YuI_rmNIo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/20a5a5-0ba2-4052-beb4-3cc85ad3c190/1/GBAXciSJlrh9kIQMLSfWJUlFgXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.168.0/23
185.81.28.0/22
Signature Algorithm: sha256WithRSAEncryption
54:24:c0:1c:39:fc:33:0d:0e:a9:4b:3c:bb:cf:85:05:8a:66:
7f:99:3a:5f:0e:a0:59:01:ea:2a:1d:3d:15:85:53:df:6d:8c:
31:f9:7a:00:86:de:54:f2:87:02:41:ab:b9:5c:e7:e7:0c:2c:
fc:19:ef:8d:d6:50:29:77:eb:d0:8b:e7:33:48:e5:39:50:b0:
df:11:7c:fe:4f:e9:df:7c:2e:88:38:3b:2e:70:4a:cb:1a:32:
70:47:c2:54:49:b4:2b:9d:ef:06:37:57:c8:f4:71:27:2e:24:
0d:34:ea:7c:73:88:1b:c8:e4:38:39:e6:2b:62:4c:ca:d0:34:
20:81:2d:7f:ad:79:f1:3c:3d:5c:f7:9d:42:ee:01:c0:dc:c7:
dc:2f:c4:ff:56:7a:62:ba:95:96:5b:84:7a:c0:85:7b:55:ef:
23:3e:64:b2:12:10:69:7a:02:10:e9:8f:26:be:35:7b:47:25:
7b:b2:9f:54:39:50:1b:72:8f:ae:dd:0d:ea:8e:f2:25:9e:46:
45:34:d0:ba:aa:90:a2:3a:ad:e4:b4:fb:cf:30:e9:05:fc:b5:
a1:21:2e:7f:c0:d2:09:e8:f9:60:98:25:d0:39:68:4e:b9:91:
86:e3:ea:e9:fb:fc:84:23:9f:fe:98:e0:d1:fd:d4:cc:8a:5b:
f6:e2:a9:2f
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYzDSO9FTsZhshaGV34eoyj9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE4MTAxNzcyMjQ4OTk2Yjg3ZDkwODQwYzJkMjdkNjI1NDk0
NTgxNzMwHhcNMjQwMTAxMDQyOTQ2WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTVkZTU0ZjZkOTJmM2I5YTYwM2Y2MDZlNThiODhmZWI5OGQyMjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAld6Bs78k4dUQb5UKdU9puipmTYOb
Z/D07gGXcEXwUuiBYM374cpGOvYDTqwUR/05sdUqbBXSpFYN1n47nCJ60VpkP4zv
MNRy/r3RsK+MWuLIjU9mOTYv6yDKpjz+afZMvlM9HUQqXwTz5RhgRcSSdG8wzJA4
t4HbXMukPlRc7QUwd5FcA8AuknOXeO5OGCwooKCf2iP+TPd+UKc56/pU5FnwiV6F
U1Jwpez20DUcudUCQ2pUobzPTxtkOD/GJv9etFH3LrPj5Cq/46QkJuPeyM6EnEP2
QUTLaHBqOkq+kPnJNrQwbx/hlmBfQUIEStXjJhsgtx2RSch1Q1mSBUAgawIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFNFd5U9tkvO5pgP2BuWLiP65jSKPMB8GA1UdIwQY
MBaAFBgQF3IkiZa4fZCEDC0n1iVJRYFzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQt
M2NjODVhZDNjMTkwLzEvMFYzbFQyMlM4N21tQV9ZRzVZdUlfcm1OSW84LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MS8yMGE1YTUtMGJhMi00MDUyLWJlYjQtM2NjODVhZDNjMTkw
LzEvR0JBWGNpU0pscmg5a0lRTUxTZldKVWxGZ1hNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLY2oAwQC
uVEcMA0GCSqGSIb3DQEBCwUAA4IBAQBUJMAcOfwzDQ6pSzy7z4UFimZ/mTpfDqBZ
AeoqHT0VhVPfbYwx+XoAht5U8ocCQau5XOfnDCz8Ge+N1lApd+vQi+czSOU5ULDf
EXz+T+nffC6IODsucErLGjJwR8JUSbQrne8GN1fI9HEnLiQNNOp8c4gbyOQ4OeYr
YkzK0DQggS1/rXnxPD1c951C7gHA3MfcL8T/VnpiupWWW4R6wIV7Ve8jPmSyEhBp
egIQ6Y8mvjV7RyV7sp9UOVAbco+u3Q3qjvIlnkZFNNC6qpCiOq3ktPvPMOkF/LWh
IS5/wNIJ6PlgmCXQOWhOuZGG4+rp+/yEI5/+mODR/dTMilv24qkv
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:38 2024 by rpki-client on console-ams.rpki-client.org